This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4230 Views
  • 0 replies
  • 0 Likes

Resolved! attacker and victim who is impacted?

under threat logs i see attacker and victim and also i see spyware signature attacker is source - dns server--- victim is -- appliance how can i verify who is impacted with this spyware? Mike

MP18 by Cyber Elite
  • 3495 Views
  • 4 replies
  • 0 Likes

Resolved! Pre-Logon GP VPN

Ive read a number of guides, but for the life of me i cannot get pre-logon working. Is there an idiots guide to the required certs i need? Our clients already have a machine cert which we use for wifi authentication

welly_59 by L3 Networker
  • 2643 Views
  • 1 replies
  • 0 Likes

Resolved! Application and Threat Update ----Decoder

need to confirm one thing below with application and threat updates when we see the decoder as DNS then we do need to check all the vulnerability and anti spyware in order to make what traffic is linked to DNS? In other words when i see the decoder as DNS i just want to make sure which anti spyware or vulnerability is modified? Mike

MP18 by Cyber Elite
  • 2953 Views
  • 2 replies
  • 0 Likes

Globalprotect disconnects

Weird one here, I have many remote users, all over, experiencing no issues. But... I have one user which when the user connects, he successfully connects but as quick as he auth's, he gets disconnected. Reason "client logged out". In which he does not logout, his side just never connects. + HQ is in Nor Cal, user is in Florida+ User only uses "y...

k.truex by L1 Bithead
  • 8089 Views
  • 5 replies
  • 0 Likes

Resolved! Is PANOS 8.1.3 really functionnal on PA-3250 ?

Hi all, We migrated 2 weeks ago from a PA-3020 to a PA-3250. We upgrated the PA-3020 from PanOS 7.1.19 to 8.1.3 and then we exported the configuration and then imported it into the PA-3250 (that was already in PANOS 8.1.3)Since this migration we faced to different issues we never encountered using the PA-3020.The most important of them is that a...

unknown-tcp.png

Experiencing issue with MineMeld fresh installs

Hi, Have anyone tried a fresh install of MineMeld recently? I'm getting issues with minemeld engine on Ubuntu 14 (using apt repo) and 16 (ansible). What I did was doing an apt-get update && apt-get upgrade on both version: From the console: minemeld-engine FATAL Exited too quickly (process log may have details)mineme...

vedd3r by L2 Linker
  • 5153 Views
  • 1 replies
  • 3 Likes

Resolved! threat logs - type vulnerability and spyware - Action - reset both and drop

Under threats logs i see type as : type vulnerability action - reset both-----------sev is high does this mean that if it is DNS query traffic this will time out the traffic?Threat ID here is 54122 type spyware action is drop --------------sev is drop as name says it will drop the traffic right? so if server is doing dns query to dns serve...

MP18 by Cyber Elite
  • 5588 Views
  • 3 replies
  • 0 Likes

Switching GP from User (Always On) to Pre Logon

I’m looking at switching GP from User (Always On) to Pre-Logon (always On).Current setup is one firewall serving as both the portal and gateway. I’m doing both username/password with client user certificates for multiple authentication factors, as this is a requirement.I deployed a computer cert to test Pre-Logon but it doesnt seem to work as ex...

MikeC by L3 Networker
  • 8497 Views
  • 10 replies
  • 0 Likes

Local User Database :: Password Change :: VPN Global Protect Client

Hello, Is the a way to force the Local User change your password at the first login in the Global Protect Client? Today I create your respective username and password but some users have been complain that I know your local respective password and they want a way to change. Someone already had to implement something to make it easier to change t...

Resolved! Disk-Space issue and role

I have found that disk-space is getting higher which is mounted on /.I just wonder the role of each filesystem.I know /dev/md5 is mounted on /opt/pancfg, /dev/mp6/ is on /opt/panrepo and so on.What is the role of / and what kind of files are there, appropraite use rate and how can i reduce the use rate?

image.png
Kang_Han by L1 Bithead
  • 9282 Views
  • 6 replies
  • 0 Likes

PA-220 Configure E1/2-5 as basic Switch Ports?

Hello.This may be a much simpler task that it seems.What I am trying to accomplish - in a SonicWALL device - is called Portshields.The management port is currently configured on my trusted LAN. How do I assign ports to be basic L2 ports on the same trusted lan.The desrired deployment scenario would be such: Management port on Trusted LAN, Truste...

catrock by L2 Linker
  • 6324 Views
  • 4 replies
  • 0 Likes

Logs during upgrade

If i do a upgrade on a firewall from panorama (maybe api is the same?), is there anyway of gather the log from the upgrade or follow the progress from the cli? Just in case the upgrade failes i guess it would be nice to be able to read the logs afterwards.

hbalzac by L3 Networker
  • 2509 Views
  • 3 replies
  • 0 Likes

Resolved! Attacker and victim in Threat logs

i am checking the threat logs direction is server to client instead of source and destination it shows attacker and victim. how can i confirm source and destination?? by ingress or egress interface or from zone to zone? RegardsMike

MP18 by Cyber Elite
  • 3516 Views
  • 1 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks